megar 0.0.1

data/lib/megar/exception.rb

@@ -0,0 +1,55 @@
+module Megar
+
+  # A general Megar exception
+  class Error < StandardError; end
+
+  class MegaRequestError < Error
+
+    # Initialise with +error_code+ returned from Mega
+    def initialize(error_code)
+      msg = case error_code
+      when -1
+        "EINTERNAL (-1): An internal error has occurred. Please submit a bug report, detailing the exact circumstances in which this error occurred."
+      when -2
+        "EARGS (-2): You have passed invalid arguments to this command."
+      when -3
+        "EAGAIN (-3) (always at the request level): A temporary congestion or server malfunction prevented your request from being processed. No data was altered. Retry. Retries must be spaced with exponential backoff."
+      when -4
+        "ERATELIMIT (-4): You have exceeded your command weight per time quota. Please wait a few seconds, then try again (this should never happen in sane real-life applications)."
+      when -5
+        "EFAILED (-5): The upload failed. Please restart it from scratch."
+      when -6
+        "ETOOMANY (-6): Too many concurrent IP addresses are accessing this upload target URL."
+      when -7
+        "ERANGE (-7): The upload file packet is out of range or not starting and ending on a chunk boundary."
+      when -8
+        "EEXPIRED (-8): The upload target URL you are trying to access has expired. Please request a fresh one."
+      when -9
+        "ENOENT (-9): Object (typically, node or user) not found"
+      when -10
+        "ECIRCULAR (-10): Circular linkage attempted"
+      when -11
+        "EACCESS (-11): Access violation (e.g., trying to write to a read-only share)"
+      when -12
+        "EEXIST (-12): Trying to create an object that already exists"
+      when -13
+        "EINCOMPLETE (-13): Trying to access an incomplete resource"
+      when -14
+        "EKEY (-14): A decryption operation failed (never returned by the API)"
+      when -15
+        "ESID (-15): Invalid or expired user session, please relogin"
+      when -16
+        "EBLOCKED (-16): User blocked"
+      when -17
+        "EOVERQUOTA (-17): Request over quota"
+      when -18
+        "ETEMPUNAVAIL (-18): Resource temporarily not available, please try again later"
+      else
+        "UNDEFINED Mega error #{error_code}"
+      end
+      super(msg)
+    end
+
+  end
+
+end

data/lib/megar/session.rb

@@ -0,0 +1,157 @@
+class Megar::Session
+
+  include Megar::Crypto
+  include Megar::Connection
+
+  attr_accessor :options
+  attr_accessor :email
+  attr_accessor :password
+  attr_accessor :master_key
+  attr_accessor :rsa_private_key # binary string
+  attr_accessor :decomposed_rsa_private_key # 4 part array of a32
+
+  # Start a new session, given +options+ hash.
+  #
+  # Required +options+ parameters:
+  #   email: 'your email address'     -- email for authentication
+  #   password: 'your password'       -- password for authentication
+  #
+  # Optional +options+ parameters:
+  #   api_endpoint: 'url'             -- talk to an alternative API endpoint
+  #   autoconnect: true/false         -- performs immediate login if true (default)
+  #
+  def initialize(options={})
+    default_options = { autoconnect: true }
+    @options = default_options.merge(options.symbolize_keys)
+    self.api_endpoint = @options[:api_endpoint] if @options[:api_endpoint]
+    connect! if @options[:autoconnect]
+  end
+
+  # Returns authenticated/connected status
+  def connected?
+    !sid.nil?
+  end
+
+  # Returns a pretty representation of the session object
+  def to_s
+    if connected?
+      "#{self.class.name}: connected as #{email}"
+    else
+      "#{self.class.name}: not connected"
+    end
+  end
+
+  # Command: perform login session challenge/response.
+  # Establishes a user session based on the response to a cryptographic challenge.
+  #
+  def connect!
+    handle_login_challenge_response(get_login_response)
+  end
+
+  # Returns the user email (convenience method)
+  def email
+    @email ||= options[:email]
+  end
+
+  # Returns the user password (convenience method)
+  def password
+    @password ||= options[:password]
+  end
+
+  # Returns the rsa_private_key base64-encoded
+  def rsa_private_key_b64
+    base64urlencode(rsa_private_key)
+  end
+
+  # Returns the folder collection
+  def folders
+    refresh_files! if @folders.nil?
+    @folders
+  end
+
+  # Returns the files collection
+  def files
+    refresh_files! if @files.nil?
+    @files
+  end
+
+  def refresh_files!
+    handle_files_response(get_files_response)
+  end
+
+  def reset_files!
+    @folders = Megar::Folders.new
+    @files = Megar::Files.new
+  end
+
+  protected
+
+  # Command: enforces guard condition requiring authenticated connection to proceed
+  def ensure_connected!
+    raise "Not connected" unless connected?
+  end
+
+  def get_login_response
+    api_request({'a' => 'us', 'user' => email, 'uh' => uh})
+  end
+
+  # Command: decrypt/decode the login +response_data+ received from Mega
+  #
+  # Javascript reference implementation: function api_getsid2(res,ctx)
+  #
+  def handle_login_challenge_response(response_data)
+    if k = response_data['k']
+      enc_master_key = base64_to_a32(k)
+      self.master_key = decrypt_key(enc_master_key, password_key)
+    end
+    if privk = response_data['privk']
+      self.rsa_private_key = decrypt_base64_to_str(privk, master_key)
+      self.decomposed_rsa_private_key = decompose_rsa_private_key(rsa_private_key)
+      if csid = response_data['csid']
+        self.sid = decrypt_session_id(csid,decomposed_rsa_private_key)
+      end
+    end
+  end
+
+  def get_files_response
+    ensure_connected!
+    api_request({'a' => 'f', 'c' => 1})
+  end
+
+  # Command: decrypt/decode the login +response_data+ received from Mega
+  #
+  def handle_files_response(response_data)
+    reset_files!
+    response_data['f'].each do |f|
+      item_attributes = {id: f['h'], payload: f.dup, type: f['t'] }
+      case f['t']
+      when 0 # File
+        item_attributes[:key] = k = decrypt_file_key(f)
+        item_attributes[:attributes] = decrypt_file_attributes(f,k)
+        files.add(item_attributes)
+      when 1 # Folder
+        item_attributes[:key] = k = decrypt_file_key(f)
+        item_attributes[:attributes] = decrypt_file_attributes(f,k)
+        folders.add(item_attributes)
+      when 2,3,4 # Root, Inbox, Trash Bin
+        folders.add(item_attributes)
+      end
+    end
+    true
+  end
+
+  # Returns the encoded user password key
+  def password_key
+    prepare_key_pw(password)
+  end
+
+  # Returns the calculated uh parameter based on email and password
+  #
+  # Javascript reference implementation: function stringhash(s,aes)
+  #
+  def uh
+    stringhash(email.downcase, password_key)
+  end
+
+
+end

data/lib/megar/shell.rb

@@ -0,0 +1,87 @@
+require 'uri'
+
+# class that groks the megar command line options and invokes the required task
+class Megar::Shell
+
+  # holds the parsed options
+  attr_reader :options
+
+  # holds the remaining command line arguments
+  attr_reader :args
+
+  # initializes the shell with command line argments:
+  #
+  # +options+ is expected to be the hash structure as provided by GetOptions.new(..)
+  #
+  # +args+ is the remaining command line arguments
+  #
+  def initialize(options,args)
+    @options = (options||{}).each{|k,v| {k => v} }
+    @args = args
+  end
+
+  # Command: execute the megar task according to the options provided on initialisation
+  def run
+    if email && password
+      $stderr.puts "Connecting to mega as #{email}.."
+      raise "Failed to connect!" unless session.connected?
+      case args.first
+      when /ls/i
+        session.files.each do |file|
+          puts file
+        end
+      else
+        $stderr.puts "Connected!"
+      end
+    else
+      usage
+    end
+  end
+
+  # defines the valid command line options
+  OPTIONS = %w(help verbose email=s password=s)
+
+  class << self
+
+    # prints usage/help information
+    def usage
+      $stderr.puts <<-EOS
+
+Megar v#{Megar::VERSION}
+===================================
+
+Usage:
+  megar [options] [commands]
+
+Options:
+  -h  | --help           : shows command help
+  -v  | --verbose        : run with verbose
+  -e= | --email=value    : email address for login
+  -p= | --password=value : password for login
+
+Commands:
+  (none)                 : will perform a basic connection test only
+  ls                     : returns a full file listing
+
+Examples:
+  megar --email=my@mail.com --password=MyPassword ls
+  megar -e my@mail.com -p MyPassword ls
+
+EOS
+    end
+  end
+
+  # prints usage/help information
+  def usage
+    self.class.usage
+  end
+
+  def session
+    @session ||= Megar::Session.new(email: email, password: password)
+  end
+
+  # Option shortcuts
+  def email    ; options[:email]    ; end
+  def password ; options[:password] ; end
+
+end

data/lib/megar/version.rb

@@ -0,0 +1,3 @@
+module Megar
+  VERSION = "0.0.1"
+end

data/megar.gemspec

@@ -0,0 +1,30 @@
+# -*- encoding: utf-8 -*-
+lib = File.expand_path('../lib', __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require 'megar/version'
+
+Gem::Specification.new do |gem|
+  gem.name          = "megar"
+  gem.version       = Megar::VERSION
+  gem.authors       = ["Paul Gallagher"]
+  gem.email         = ["gallagher.paul@gmail.com"]
+  gem.description   = %q{Megaargh! A Ruby wrapper for the Mega API (mega.co.nz)}
+  gem.summary       = %q{A Ruby wrapper and command-line tool for the Mega API (mega.co.nz)}
+  gem.homepage      = "https://github.com/tardate/megar"
+
+  gem.files         = `git ls-files`.split($/)
+  gem.executables   = gem.files.grep(%r{^bin/}).map{ |f| File.basename(f) }
+  gem.test_files    = gem.files.grep(%r{^(test|spec|features)/})
+  gem.require_paths = ["lib"]
+
+  gem.add_runtime_dependency(%q<getoptions>, [">= 0.3"])
+  gem.add_runtime_dependency(%q<activesupport>, [">= 3.0.3"])
+
+  gem.add_development_dependency(%q<bundler>, ["> 1.1.0"])
+  gem.add_development_dependency(%q<rake>, ["~> 0.9.2.2"])
+  gem.add_development_dependency(%q<rspec>, ["~> 2.8.0"])
+  gem.add_development_dependency(%q<rdoc>, ["~> 3.11"])
+  gem.add_development_dependency(%q<guard-rspec>, ["~> 1.2.0"])
+  gem.add_development_dependency(%q<rb-fsevent>, ["~> 0.9.1"])
+
+end

data/spec/fixtures/crypto_expectations/sample_user.json

@@ -0,0 +1,109 @@
+{
+  "email": "megartest@gmail.com",
+  "email_mixed_case": "Megartest@gmail.com",
+  "password": "15kMW4GiHVWFmqJJ",
+  "autoconnect": false,
+  "login_response_data": {
+    "csid": "CAA4by3fJFnderfxuUgwXDhQJkaxKTREaVIA4QuyKmE2CnVDP2w5pU-tftPcHvfdCoV9Gi-rTKsB11rBcc1yK1I8IVOzAwST9yUwSmZI-9Euq-FEUOCsnHYLDlykTOSisU9OU0GausJZbCCHrSLI_Q49Ndc-BBQc361W-DkZUl8ZgKCl3qleBP5aepJbR-bSTR5bJ-IxRmdf2jYUE0dz3lLMGSC4XjGBXgydFlGNgJqURpik9FrW1gPFyKESRNfxudteoSWO-f2bgD-4eEek4kHAaZZQW2K5Yb2GBXCOVQ0_7jpcRd9-gwhUHpTJETNxtEPxMEBtOtAhEm1hxXSxWZgr",
+    "privk": "4Iurk4vQ0BlLEEvEyaRUX8QnYzJFIedm0RVKe2pLh4wTzBBtgmafnszD_dP3Y40P-DSNLEGfWghL-0_BIW4XP8tfGNFkMg7mnYgQYC91ccz58BbhGEDf7-j97dstckf3OSSsT9D9H-cocXzyt1m231w9d7YLX23c3KAGz3vxdnl66F4jsFGO9AdIyb1KTEEt7NHkljtbz3WgWlk6W6wBawuEbJvLPHPx2L16i0iacbbkQi8ZF4pmddswMa9yWOSXwUribGDbdgx_jDGjBoKJUJI-7Aa-aOaRPEoVUTft2R2lNAVErvYwD_GIsIhQiCcJWul-KqPhI3vquvzUHd2rHHvKyTLyvXKyIDeVdBGXTaqFA2ni9xsjUNMOX14ftBZ4_fgDce0jvrZzYRs5IuOMt3K9gKMpBpUWtnlaBYbnYdL2zJuFlrM77PlcYab2uLLqlSe4hh-FxMAc_p_8tDAoU4dPgpgOpU3GRR8i7oszu_MKibzNpRBeAX1UtwKwQepjPnipu9aQlPy9OtgB-5KmGi34EcMKBPg8BN6vHRYg0Za_lk_TtTQ4WbkllAqR3Fla5-RBjzB7f3dWae4ES3VX4f-dI-UYrrKDQkqaS0R_xLaMPNG6_GQMDM7L5Fsa8I3hFjdgfs9rV4Xf_uIFrhUjm25EuT5JCdobNmwBi9VU5nCbk0LQJdrXDNYV3fmD-Y_p_KV8x_-opRnXUV03SCopOD6DhitsFtpv065QXcG1SNDu0mM-kgDh9E-QddtQQtXLLPuKFyX5o1ts08EqXTxHsZo5tIsevbExZoz9hxSRrr-V5swEDcJXoV78_k6sR3iniZ_m77JVo9QU572av2MvNhyu5YeTXyc0m6Me7cPGiO0",
+    "k": "GmSWkhwjjn38w8OHkD_S-A"
+  },
+  "master_key": [
+    384287193,
+    302859698,
+    554881366,
+    530403344
+  ],
+  "expected_uh": "mBdCzS2yFgo",
+  "sid": "yfMNTyTPzUKOuWYWRO-qhXpBOEN6Q2Y5dFp3JAKn0WNBqLBEzgbaMaILNg",
+  "rsa_private_key_b64": "BACOQ7VCjwkiwYCKhqRRvPTMBaQ5Yx2_sszj6ILrxrTBOJ2bu-9LsOSvaGz0HpnM2lXpJg3h6QWJdlQBOhwvfeafHg7rcEaaDuUWONifv5ABpQgeoAij6cgARMvFiOdjarMvu954Eduup8PHcgfjsBSu76qpu3UqkZCpBpByAYU1oQQA1i5oxuA9i7qsXxhJRsBeceI7hZSnNYAQzsWfFD0kDW8GsJBuK-CST6oNNp0z7MQ5Qof6DZ8x9wt5ZJR43HFmD2VtTQUZLvIeemC4URuR74UWn25CETyzQdIhdNSEibaCRvi0sNwb-ikCZVxxo4-O7ZBQPw0egrQOJW06HlCQUykH_00EIoiBRcbJLS6W3nJ8KhddDf_4glZYPz6fBpqu1jIdIBGOGQf4Ttn_DmdAgkLxWF7AF6k59D45J9kxfANRJIBGSWUsI1bQBlrwFtois4O14uQkQ40Jh_d5BCrLPe599zrliGH1SsECx_xYGWcWY_GPsPa99d_St56BB9oUtDW3A1clEx2uVS8OWqRPgVimu6MXs_TEEnjWGRFofHpl_8qGeAoPbNkXsTMQb6uUK4NCYq3UzVfreByEnOqxuQcu2jlF4Ey0UH9w_KjkRyT8xu--kyZAbktYaw4EZmGUxZIlkZLk_OAGaW8KWPZhdGxjfi8K7WeZK2HtLe4At48DC_ED_20pNtkTCrB6-FQlMj6a4O2C1sE6pSdrIPofcK-HpaefOXqYKWpRM-Wnp_qHnuJgEtgodQ-pw74nXkOsVFZoJzVGCepZKoa2xhevAu3CfXMfR97LIski17PPwWV9n7yQ7onSKDmJP-q4mO7PG7LICE22WkgJkk_T1W4UkDTkCxZE_t64F6JOryg",
+  "decomposed_rsa_private_key": [
+    99901518447147034909201847419097315968297147437151469508360346463543063455874100243913856315732601845631262435262260706834732781343251117295631282035669718956849603873760427510697419513879951677293141811802298231979984193675329310799949319780256427743430868153430092107435691279045586737323088097814348379553,
+    150403214039042969422234539598081448727095065760827625117291927993312435808658801596490175435022631344068300286691567969167599002686861320953369584858579175145292571827741537678953851066650767421880724569960757205263834584408256907364362335186143689470541020576121430290451811639884653381769242114589063140137,
+    9722388475302835659981770144245473802727189238482784140772185098454692776534140965636906536278050956583642123384956999145748370323609525303581225997179041811165866787665739142915159339213277652697292051951101524711140179706280769338283140995188236373535772131640760223532777113050011892350517809489041748221890761908227035155427120665309649346176680716768795083108884918500667128372337390742180547015864208380672823661707652326881334341297176353315311938916714461230279773342086788397843164325182504213999351119600183937196301188144973390771200970801617167449547771853642668679963596445734355177856606187012189522929,
+    76655456251690686310715773467748134538235257990884898225079665817629234781830040448768066408365824785604130747777597240274232562744683362773774949177985094198657737800269908016421544875604264806165580741547472576851314301645952126968540259498362204011872412045782028541860398434400028332528808362023863391812
+  ],
+  "files_response_data": {
+    "f": [
+      {
+        "h": "ewZ1GAqT",
+        "p": "",
+        "u": "zA8CzCf9tZw",
+        "t": 4,
+        "a": "",
+        "k": "",
+        "ts": 1361694312
+      },
+      {
+        "h": "qtBjmBTR",
+        "p": "",
+        "u": "zA8CzCf9tZw",
+        "t": 3,
+        "a": "",
+        "k": "",
+        "ts": 1361694312
+      },
+      {
+        "h": "ywJVFBKB",
+        "p": "",
+        "u": "zA8CzCf9tZw",
+        "t": 2,
+        "a": "",
+        "k": "",
+        "ts": 1361694312
+      },
+      {
+        "h": "jtwkAQaK",
+        "p": "ywJVFBKB",
+        "u": "zA8CzCf9tZw",
+        "t": 1,
+        "a": "US0wKXcni_p8dnqRvhR_Otafji3ioNJ5IsgSHB5zhOw",
+        "k": "zA8CzCf9tZw:4LMrqo0U-VwPGhhXV2fjQw",
+        "ts": 1361696928
+      },
+      {
+        "h": "atY1xRAb",
+        "p": "ywJVFBKB",
+        "u": "zA8CzCf9tZw",
+        "t": 1,
+        "a": "XOtY9s3EU2DypiRM2I74SS79lZaaQYQcmO4-Lekk0rw",
+        "k": "zA8CzCf9tZw:56VbHKn14ww22T-Xuwyjvg",
+        "ts": 1361696936
+      },
+      {
+        "h": "74ZTXbyR",
+        "p": "ywJVFBKB",
+        "u": "zA8CzCf9tZw",
+        "t": 0,
+        "a": "m9IIApZejMhZnsRy63HvhrkYh_AalPjfRYzsMpkq5-Q",
+        "k": "zA8CzCf9tZw:fJjggPPQGf_5MzqCuvyUGxuxVnDJLo6qBGAOwJAkOm4",
+        "s": 39,
+        "ts": 1361697187
+      },
+      {
+        "h": "L0xHwayA",
+        "p": "ywJVFBKB",
+        "u": "zA8CzCf9tZw",
+        "t": 0,
+        "a": "n4CazRegf4aLA4BNrdoEsqRLGLQ244NjJUJi53Zz-J4",
+        "k": "zA8CzCf9tZw:Iz6fsJ_qIgmS4uC4eirPnfaZOcLOoQA2t_5wTtfqp7Y",
+        "s": 137080,
+        "ts": 1361697194
+      }
+    ],
+    "ok": [
+
+    ],
+    "s": [
+
+    ],
+    "u": [
+      {
+        "u": "zA8CzCf9tZw",
+        "c": 2,
+        "m": "megartest@gmail.com"
+      }
+    ],
+    "sn": "pQ-WDyYPBHU"
+  }
+}