moguera-authentication 0.0.1

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: fc3dfe649673b10bebc29e516c4ce648b1dd04e1
+  data.tar.gz: 790de69338563c94b9a52eacef08b7c1d60297c1
+SHA512:
+  metadata.gz: c3c1a8c8013d6e34740591ca912bb9bbdb8d72089f846b882d9b9dff569a94f6660c82c222a8471b0d3cebffe865a8d7bedbf14862b426a991175d60b0602416
+  data.tar.gz: ecc22756a412c60b51b0885f4e2a12c6bd43ea065da697b5baa320b730c211c338aea75a88d525ccfd3927854767667809cdcc4c6728f34e39e8261bdf5d0275

data/.coveralls.yml

@@ -0,0 +1 @@
+service_name: travis-ci

data/.gitignore

@@ -0,0 +1,15 @@
+/.bundle/
+/.yardoc
+/Gemfile.lock
+/_yardoc/
+/coverage/
+/doc/
+/pkg/
+/spec/reports/
+/tmp/
+*.bundle
+*.so
+*.o
+*.a
+mkmf.log
+/.idea/

data/.rspec

@@ -0,0 +1,2 @@
+--color
+--require spec_helper

data/.travis.yml

@@ -0,0 +1,7 @@
+language: ruby
+rvm:
+ - 2.1.5
+gemfile:
+ - Gemfile
+script:
+ - bundle exec rake spec

data/Gemfile

@@ -0,0 +1,18 @@
+source 'https://rubygems.org'
+
+# Specify your gem's dependencies in moguera-authentication.gemspec
+gemspec
+
+group :test do
+  gem 'timecop'
+  gem 'pry'
+  gem 'pry-byebug'
+  gem 'simplecov'
+  gem 'simplecov-rcov'
+  gem 'coveralls'
+end
+
+group :development do
+  gem 'rest-client'
+  gem 'sinatra'
+end

data/LICENSE.txt

@@ -0,0 +1,22 @@
+Copyright (c) 2014 hiro-su
+
+MIT License
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND
+NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE
+LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION
+OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
+WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

data/README.md

@@ -0,0 +1,144 @@
+# Moguera::Authentication
+
+Simple REST API Authentication.
+
+[![Build Status](https://travis-ci.org/moguera/moguera-authentication.svg)](https://travis-ci.org/moguera/moguera-authentication)
+[![Coverage Status](https://coveralls.io/repos/moguera/moguera-authentication/badge.png?branch=master)](https://coveralls.io/r/moguera/moguera-authentication?branch=master)
+
+
+## Installation
+
+Add this line to your application's Gemfile:
+
+```ruby
+gem 'moguera-authentication'
+```
+
+And then execute:
+
+    $ bundle
+
+Or install it yourself as:
+
+    $ gem install moguera-authentication
+
+## Authentication Logic
+Use paramas
+
+- access_key
+- secret_access_key
+- request_pah
+- request_method
+- http_date
+- content_type
+
+```ruby
+string_to_isgn = access_key + request_path + request_method + http_date + conetnt_type
+signature = Baes64.encode64(OpenSSL::HMAC.hexdigest(sha1, secret_access_key, string_to_sign)
+
+Authorization header
+Authorization: MOGUERA + " " + access_key + ":" + signature
+```
+
+Server check
+
+1. Same request_token and server_token?
+2. Expired the request?
+
+## Usage
+
+### Server
+sinatra sample
+
+```ruby
+require 'sinatra'
+require 'moguera/authentication'
+
+post '/login' do
+  begin
+    request_token = Moguera::Authentication.new(request.env['HTTP_AUTHORIZATION'])
+    user = request_token.authenticate! do |key|
+      key_to_secret = 'secret'
+
+      Moguera::Authentication::Request.new(
+        access_key: key,
+        secret_access_key: key_to_secret,
+        request_path: request.env['REQUEST_PATH'],
+        content_type: request.content_type,
+        http_date: request.env['HTTP_DATE'],
+        request_method: request.request_method
+      )
+    end
+    return user.access_key
+  rescue Moguera::Authentication::ParameterInvalid => e
+    halt 400, "400 Bad Request: #{e.message}\n"
+  rescue Moguera::Authentication::AuthenticationError => e
+    params = %w(
+      token access_key secret_access_key http_date
+      request_method request_path content_type
+    )
+    msg = ["request_tooken: #{e.request_token}"]
+    msg << params.map {|k| "server_#{k}: #{e.server_request.send(k)}" }
+    logger.error msg * "\n"
+    halt 401, "401 Unauthorized: #{e.message}\n"
+  end
+end
+```
+
+### Cilent
+rest-client sample
+
+```ruby
+require 'moguera/authentication'
+require 'rest-client'
+require 'time'
+require 'json'
+require 'uri'
+
+url = ARGV[0]
+abort "Usage: ruby #{__FILE__} http://localhost:4567/login" unless url
+
+request_path = URI.parse(url).path
+request_method = 'POST'
+http_date = Time.now.httpdate
+content_type = 'application/json'
+
+request = Moguera::Authentication::Request.new(
+    access_key: 'apikey',
+    secret_access_key: 'secret',
+    request_path: request_path,
+    request_method: request_method,
+    http_date: http_date,
+    content_type: content_type
+)
+
+headers = {
+    Authorization: request.token,
+    content_type: content_type,
+    Date: http_date
+}
+
+payload = { key: 'value' }.to_json
+
+begin
+  res = RestClient.post(url, payload, headers)
+  puts res.code
+  puts res.body
+rescue => e
+  abort e.response
+end
+```
+
+## Contributing
+
+1. Fork it ( https://github.com/[my-github-username]/moguera-authentication/fork )
+2. Create your feature branch (`git checkout -b my-new-feature`)
+3. Commit your changes (`git commit -am 'Add some feature'`)
+4. Push to the branch (`git push origin my-new-feature`)
+5. Create a new Pull Request
+
+## Copyright
+
+Copyright (c) 2014 hiro-su.
+
+MIT License

data/Rakefile

@@ -0,0 +1,14 @@
+require "bundler/gem_tasks"
+
+begin
+  require "rspec/core/rake_task"
+
+  RSpec::Core::RakeTask.new(:spec) do |t|
+    t.fail_on_error = true
+    t.rspec_opts = '--format doc'
+  end
+
+  task :default => :spec
+rescue LoadError
+  # no rspec available
+end

data/lib/moguera/authentication/exception.rb

@@ -0,0 +1,14 @@
+module Moguera
+  class Authentication
+    class AuthenticationError < StandardError
+      attr_accessor :server_request
+      attr_accessor :request_token
+    end
+
+    class ParameterInvalid < StandardError
+    end
+
+    class BlockRequired < StandardError
+    end
+  end
+end

data/lib/moguera/authentication/request.rb

@@ -0,0 +1,56 @@
+module Moguera
+  class Authentication
+    class Request
+      attr_accessor :token_prefix
+
+      def initialize(access_key:, secret_access_key:, request_path:, request_method:, http_date:, content_type:)
+        require 'time'
+        require 'openssl'
+        require 'base64'
+
+        @access_key = access_key
+        @secret_access_key = secret_access_key
+        @request_path = request_path
+        @request_method = request_method
+        @http_date = http_date
+        @content_type = content_type
+
+        @token_prefix = token_prefix || 'MOGUERA'
+
+        validate_parameter!
+      end
+
+      attr_reader :access_key, :secret_access_key, :request_path,
+                  :request_method, :http_date, :content_type
+
+      def token
+        raise ParameterInvalid, 'Token prefix required.' if @token_prefix.nil?
+
+        @token_prefix + ' ' + @access_key + ':' + signature
+      end
+
+      private
+
+      def signature
+        sha1 = OpenSSL::Digest::SHA1.new
+        digest = OpenSSL::HMAC.hexdigest(sha1, @secret_access_key, string_to_sign)
+        Base64.encode64(digest).strip
+      end
+
+      def string_to_sign
+        @access_key + @request_path + @request_method + @http_date + @content_type
+      end
+
+      def validate_parameter!
+        errors = []
+        errors << 'Access Key' unless @access_key
+        errors << 'Secret Access Key' unless @secret_access_key
+        errors << 'Request Path' unless @request_path
+        errors << 'Date Header' unless @http_date
+        errors << 'Content-Type Header' unless @content_type
+
+        raise ParameterInvalid, 'Missing: ' + errors * ', ' unless errors.empty?
+      end
+    end
+  end
+end

data/lib/moguera/authentication/version.rb

@@ -0,0 +1,5 @@
+module Moguera
+  class Authentication
+    VERSION = "0.0.1"
+  end
+end

data/lib/moguera/authentication.rb

@@ -0,0 +1,78 @@
+require 'moguera/authentication/version'
+require 'moguera/authentication/request'
+require 'moguera/authentication/exception'
+
+module Moguera
+  class Authentication
+    attr_accessor :allow_time_interval
+
+    def initialize(request_token = nil)
+      raise AuthenticationError, 'Missing request token.' unless request_token
+
+      @request_token = request_token
+      @allow_time_interval = allow_time_interval || 600
+    end
+
+    def authenticate!(&block)
+      raise BlockRequired, 'Request token required.' unless block_given?
+
+      access_key = extract_access_key_from_token(token: @request_token)
+      server_request = block.call(access_key)
+
+      validate_token!(server_token: server_request.token, request_token: @request_token)
+      validate_time!(request_time: server_request.http_date)
+
+      server_request
+    rescue AuthenticationError => e
+      authentication_error = AuthenticationError.new(e.message)
+      authentication_error.request_token = @request_token
+      authentication_error.server_request = server_request if server_request
+      raise authentication_error
+    end
+
+    def authenticate(&block)
+      authenticate!(&block)
+
+    rescue AuthenticationError
+      false
+    end
+
+    private
+
+    def extract_access_key_from_token(token:)
+      begin
+        _, access_key_signature = token.split
+        access_key, _ = access_key_signature.split(':')
+      rescue
+        raise AuthenticationError, 'Invalid token.'
+      end
+
+      access_key
+    end
+
+    def validate_token!(server_token:, request_token:)
+      unless server_token == request_token
+        raise AuthenticationError, 'Mismatch token.'
+      end
+
+      true
+    end
+
+    def validate_time!(request_time:)
+      return true if @allow_time_interval.nil?
+
+      if @allow_time_interval <= 0
+        raise ParameterInvalid, 'Please input a positive value.'
+      end
+
+      rt = Time.parse(request_time).to_i
+      interval = (Time.now.to_i - rt).abs
+
+      if @allow_time_interval <= interval
+        raise AuthenticationError, 'Expired request.'
+      end
+
+      true
+    end
+  end
+end

data/moguera-authentication.gemspec

@@ -0,0 +1,24 @@
+# coding: utf-8
+lib = File.expand_path('../lib', __FILE__)
+$LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
+require 'moguera/authentication/version'
+
+Gem::Specification.new do |spec|
+  spec.name          = "moguera-authentication"
+  spec.version       = Moguera::Authentication::VERSION
+  spec.authors       = ["hiro-su"]
+  spec.email         = ["h.sugipon@gmail.com"]
+  spec.summary       = %q{Simple REST API Authentication.}
+  spec.description   = %q{Simple REST API Authentication.}
+  spec.homepage      = "https://github.com/moguera/moguera-authentication"
+  spec.license       = "MIT"
+
+  spec.files         = `git ls-files -z`.split("\x0")
+  spec.executables   = spec.files.grep(%r{^bin/}) { |f| File.basename(f) }
+  spec.test_files    = spec.files.grep(%r{^(test|spec|features)/})
+  spec.require_paths = ["lib"]
+
+  spec.add_development_dependency "bundler", "~> 1.7"
+  spec.add_development_dependency "rake", "~> 10.0"
+  spec.add_development_dependency "rspec", "~> 3.1.0"
+end

data/sample/client.rb

@@ -0,0 +1,43 @@
+#!/usr/bin/env ruby
+
+$LOAD_PATH.unshift(File.dirname(__FILE__))
+$LOAD_PATH.unshift(File.join(File.dirname(__FILE__), %w(.. lib)))
+
+require 'moguera/authentication'
+require 'rest-client'
+require 'time'
+require 'json'
+require 'uri'
+
+url = ARGV[0]
+abort "Usage: ruby #{__FILE__} http://localhost:4567/login" unless url
+
+request_path = URI.parse(url).path
+request_method = 'POST'
+http_date = Time.now.httpdate
+content_type = 'application/json'
+
+request = Moguera::Authentication::Request.new(
+    access_key: 'apikey',
+    secret_access_key: 'secret',
+    request_path: request_path,
+    request_method: request_method,
+    http_date: http_date,
+    content_type: content_type
+)
+
+headers = {
+    Authorization: request.token,
+    content_type: content_type,
+    Date: http_date
+}
+
+payload = { key: 'value' }.to_json
+
+begin
+  res = RestClient.post(url, payload, headers)
+  puts res.code
+  puts res.body
+rescue => e
+  abort e.response
+end

data/sample/server.rb

@@ -0,0 +1,56 @@
+#!/usr/bin/env ruby
+#
+$LOAD_PATH.unshift(File.dirname(__FILE__))
+$LOAD_PATH.unshift(File.join(File.dirname(__FILE__), %w(.. lib)))
+
+require 'sinatra'
+require 'moguera/authentication'
+
+post '/login' do
+  begin
+    request_token = Moguera::Authentication.new(request.env['HTTP_AUTHORIZATION'])
+    user = request_token.authenticate! do |key|
+      key_to_secret = 'secret'
+
+      Moguera::Authentication::Request.new(
+        access_key: key,
+        secret_access_key: key_to_secret,
+        request_path: request.env['REQUEST_PATH'],
+        content_type: request.content_type,
+        http_date: request.env['HTTP_DATE'],
+        request_method: request.request_method
+      )
+    end
+    return user.access_key
+  rescue Moguera::Authentication::ParameterInvalid => e
+    halt 400, "400 Bad Request: #{e.message}\n"
+  rescue Moguera::Authentication::AuthenticationError => e
+    params = %w(
+      token access_key secret_access_key http_date
+      request_method request_path content_type
+    )
+    msg = ["request_tooken: #{e.request_token}"]
+    msg << params.map {|k| "server_#{k}: #{e.server_request.send(k)}" }
+    logger.error msg * "\n"
+    halt 401, "401 Unauthorized: #{e.message}\n"
+  end
+end
+
+post '/login2' do
+    request_token = Moguera::Authentication.new(request.env['HTTP_AUTHORIZATION'])
+    user = request_token.authenticate do |key|
+      key_to_secret = 'secret'
+
+      Moguera::Authentication::Request.new(
+        access_key: key,
+        secret_access_key: key_to_secret,
+        request_path: request.env['REQUEST_PATH'],
+        content_type: request.content_type,
+        http_date: request.env['HTTP_DATE'],
+        request_method: request.request_method
+      )
+    end
+
+    halt 401, "401 Unauthorized" unless user
+    return user.access_key
+end

data/spec/authentication/request_spec.rb

@@ -0,0 +1,99 @@
+require 'spec_helper'
+
+describe Moguera::Authentication::Request do
+  include_context 'prepare_auth'
+
+  subject {
+    Moguera::Authentication::Request.new(
+        access_key: access_key,
+        secret_access_key: secret_access_key,
+        request_path: request_path,
+        request_method: request_method,
+        http_date: http_date,
+        content_type: content_type
+    )
+  }
+
+  it 'should be set the token_prefix' do
+    subject.token_prefix = 'TEST'
+    expect(subject.token_prefix).to eq 'TEST'
+  end
+
+  it 'should be read the token_prefix' do
+    expect(subject.token_prefix).to eq 'MOGUERA'
+  end
+
+  it 'should be read the access_key' do
+    expect(subject.access_key).to eq access_key
+  end
+
+  it 'should be read the secret_access_key' do
+    expect(subject.secret_access_key).to eq secret_access_key
+  end
+
+  it 'should be read the request_path' do
+    expect(subject.request_path).to eq request_path
+  end
+
+  it 'should be read the request_method' do
+    expect(subject.request_method).to eq request_method
+  end
+
+  it 'should be read the http_date' do
+    expect(subject.http_date).to eq http_date
+  end
+
+  it 'should be read the content_type' do
+    expect(subject.content_type).to eq content_type
+  end
+
+  describe '#token' do
+    it 'should be display the signature token' do
+      expect(subject.token).to eq request_token
+    end
+  end
+
+  describe '#signature' do
+    it 'should be create the signature' do
+      _, access_key_signature = subject.token.split
+      _, signature = access_key_signature.split(':')
+
+      expect(subject.send(:signature)).to eq signature
+    end
+  end
+
+  describe '#string_to_sign' do
+    it 'should be create the string_to_sign' do
+      string_to_sign = access_key + request_path + request_method + http_date + content_type
+
+      expect(subject.send(:string_to_sign)).to eq string_to_sign
+    end
+  end
+
+  describe 'Invalid Parameter' do
+    describe 'request parameter is nil' do
+      it 'should be raise ParameterInvalid Exception' do
+        error = "Missing: Access Key, Secret Access Key, Request Path, Date Header, Content-Type Header"
+        expect {
+          Moguera::Authentication::Request.new(
+              access_key: nil,
+              secret_access_key: nil,
+              request_path: nil,
+              request_method: nil,
+              http_date: nil,
+              content_type: nil
+          )
+        }.to raise_error(Moguera::Authentication::ParameterInvalid, error)
+      end
+    end
+
+    describe 'token_prefix is nil' do
+      it 'should be raise ParameterInvalid Exception' do
+        subject.token_prefix = nil
+        expect {
+          subject.token
+        }.to raise_error(Moguera::Authentication::ParameterInvalid, 'Token prefix required.')
+      end
+    end
+  end
+end

data/spec/authentication_spec.rb

@@ -0,0 +1,134 @@
+require 'spec_helper'
+
+describe Moguera::Authentication do
+  include_context "prepare_auth"
+
+  subject { Moguera::Authentication.new(request_token) }
+
+  it 'should be set allow_time_interval' do
+    subject.allow_time_interval = 300
+    expect(subject.allow_time_interval).to eq 300
+  end
+
+  it 'should be read allow_time_interval' do
+    # default 600s
+    expect(subject.allow_time_interval).to eq 600
+  end
+
+  describe "#authenticate!" do
+    it 'should be authenticate' do
+      user = subject.authenticate! do |request_key|
+        Moguera::Authentication::Request.new(
+            access_key: request_key,
+            secret_access_key: secret_access_key,
+            request_path: request_path,
+            request_method: request_method,
+            http_date: http_date,
+            content_type: content_type
+        )
+      end
+      expect(user.access_key).to eq access_key
+    end
+
+    describe 'Invalid token' do
+      it 'should be raise AuthenticationError with missing request token message' do
+        expect {
+          Moguera::Authentication.new
+        }.to raise_error(Moguera::Authentication::AuthenticationError, 'Missing request token.')
+      end
+
+      it 'should be raise AuthenticationError with invalid token message' do
+        expect {
+          Moguera::Authentication.new('invalid_token').authenticate! { request }
+        }.to raise_error(Moguera::Authentication::AuthenticationError, 'Invalid token.')
+      end
+
+      it 'should be raise AuthenticationError with mismatch token message' do
+        expect {
+          Moguera::Authentication.new('Mismatch token:signature').authenticate! { request }
+        }.to raise_error(Moguera::Authentication::AuthenticationError, 'Mismatch token.')
+      end
+    end
+  end
+
+  describe '#authenticate' do
+    it 'should be authenticate' do
+      user = subject.authenticate do |request_key|
+        Moguera::Authentication::Request.new(
+            access_key: request_key,
+            secret_access_key: secret_access_key,
+            request_path: request_path,
+            request_method: request_method,
+            http_date: http_date,
+            content_type: content_type
+        )
+      end
+      expect(user.access_key).to eq access_key
+    end
+
+    describe 'Invalid token' do
+      it 'should be return false' do
+        expect(
+            Moguera::Authentication.new('Mismatch token:signature').authenticate { request }
+        ).to eq false
+      end
+    end
+  end
+
+  describe '#extract_access_key_from_token' do
+    it 'should be return access_key' do
+      expect(
+          subject.send(:extract_access_key_from_token, token: 'TEST access_key:signature')
+      ).to eq 'access_key'
+    end
+
+    describe 'Invalid token' do
+      it 'should be raise AuthenticationError with invalid token message' do
+        expect {
+          subject.send(:extract_access_key_from_token, token: 'invalid_token')
+        }.to raise_error(Moguera::Authentication::AuthenticationError, 'Invalid token.')
+      end
+    end
+  end
+
+  describe '#validate_token!' do
+    it 'should be validate token' do
+      expect(
+          subject.send(:validate_token!, server_token: 'test_token', request_token: 'test_token')
+      ).to eq true
+    end
+
+    describe 'Mismatch token' do
+      it 'should be raise AuthenticationError with mismatch token message' do
+        expect {
+          subject.send(:validate_token!, server_token: 'test1_token', request_token: 'test2_token')
+        }.to raise_error(Moguera::Authentication::AuthenticationError, 'Mismatch token.')
+      end
+    end
+  end
+
+  describe '#validate_time!' do
+    it 'should be validate time' do
+      expect(
+          subject.send(:validate_time!, request_time: http_date)
+      ).to eq true
+    end
+
+    describe 'Invalid allow_time_interval' do
+      it 'should be raise ParameterInvalid' do
+        subject.allow_time_interval = -1
+        expect {
+          subject.send(:validate_time!, request_time: http_date)
+        }.to raise_error(Moguera::Authentication::ParameterInvalid, 'Please input a positive value.')
+      end
+    end
+
+    describe 'Expired request' do
+      it 'should be raise AuthenticationError' do
+        expect {
+          subject.send(:validate_time!, request_time: (Time.parse(http_date)-1000).httpdate)
+        }.to raise_error(Moguera::Authentication::AuthenticationError, 'Expired request.')
+      end
+    end
+  end
+end

data/spec/shared_context.rb

@@ -0,0 +1,22 @@
+RSpec.shared_context 'prepare_auth' do
+  let(:access_key) { 'apikey' }
+  let(:secret_access_key) { 'secret' }
+  let(:request_path) { 'path' }
+  let(:request_method) { 'POST' }
+  let(:content_type) { 'application/json' }
+  let(:now) { Timecop.freeze(Time.now) }
+  let(:http_date) { now.httpdate }
+  let(:request) {
+    Moguera::Authentication::Request.new(
+        access_key: access_key,
+        secret_access_key: secret_access_key,
+        request_path: request_path,
+        request_method: request_method,
+        http_date: http_date,
+        content_type: content_type
+    )
+  }
+  let(:request_token) {
+    request.token
+  }
+end

data/spec/spec_helper.rb

@@ -0,0 +1,40 @@
+require "bundler/setup"
+Bundler.require :test
+
+$LOAD_PATH.unshift(File.dirname(__FILE__))
+$LOAD_PATH.unshift(File.join(File.dirname(__FILE__), %w(.. lib)))
+
+SimpleCov.formatter = SimpleCov::Formatter::MultiFormatter[
+  SimpleCov::Formatter::HTMLFormatter,
+  SimpleCov::Formatter::RcovFormatter,
+  Coveralls::SimpleCov::Formatter
+]
+SimpleCov.start { add_filter 'spec' }
+
+RSpec.configure do |config|
+
+  # Captures the output for analysis later
+  #
+  # @example Capture `$stderr`
+  #
+  # output = capture(:stderr) { $stderr.puts "this is captured" }
+  #
+  # @param [Symbol] stream `:stdout` or `:stderr`
+  # @yield The block to capture stdout/stderr for.
+  # @return [String] The contents of $stdout or $stderr
+  def capture(stream)
+    begin
+      stream = stream.to_s
+      eval "$#{stream} = StringIO.new"
+      yield
+      result = eval("$#{stream}").string
+    ensure
+      eval("$#{stream} = #{stream.upcase}")
+    end
+
+    result
+  end
+end
+
+require 'moguera/authentication'
+require 'shared_context'

metadata

@@ -0,0 +1,109 @@
+--- !ruby/object:Gem::Specification
+name: moguera-authentication
+version: !ruby/object:Gem::Version
+  version: 0.0.1
+platform: ruby
+authors:
+- hiro-su
+autorequire: 
+bindir: bin
+cert_chain: []
+date: 2014-11-23 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  name: bundler
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.7'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '1.7'
+- !ruby/object:Gem::Dependency
+  name: rake
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: '10.0'
+- !ruby/object:Gem::Dependency
+  name: rspec
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 3.1.0
+  type: :development
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - "~>"
+      - !ruby/object:Gem::Version
+        version: 3.1.0
+description: Simple REST API Authentication.
+email:
+- h.sugipon@gmail.com
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- ".coveralls.yml"
+- ".gitignore"
+- ".rspec"
+- ".travis.yml"
+- Gemfile
+- LICENSE.txt
+- README.md
+- Rakefile
+- lib/moguera/authentication.rb
+- lib/moguera/authentication/exception.rb
+- lib/moguera/authentication/request.rb
+- lib/moguera/authentication/version.rb
+- moguera-authentication.gemspec
+- sample/client.rb
+- sample/server.rb
+- spec/authentication/request_spec.rb
+- spec/authentication_spec.rb
+- spec/shared_context.rb
+- spec/spec_helper.rb
+homepage: https://github.com/moguera/moguera-authentication
+licenses:
+- MIT
+metadata: {}
+post_install_message: 
+rdoc_options: []
+require_paths:
+- lib
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project: 
+rubygems_version: 2.2.2
+signing_key: 
+specification_version: 4
+summary: Simple REST API Authentication.
+test_files:
+- spec/authentication/request_spec.rb
+- spec/authentication_spec.rb
+- spec/shared_context.rb
+- spec/spec_helper.rb